7MS #487: Light Pentest eBook Announcement!
7 Minute Security28 Sep 2021

7MS #487: Light Pentest eBook Announcement!

Hey friends! Today I've got some exciting personal/professional news to share: our Light Pentest eBook - which is a practical, step-by-step playbook for internal network penetration testing - is now available for purchase!

Note: this eBook and the Light Pentest LITE training are two separate things, but do cover some of the same topics.

The Light Pentest eBook covers:

  • Grabbing and analyzing packet captures
  • Abusing insecure network protocols
  • Exploiting (the lack of) SMB signing
  • Capturing, cracking and passing hashes
  • Locating high-value targets with DNS zone transfers
  • Exploiting vulnerable Group Policy Objects
  • Scraping screenshots of Web interfaces with WitnessMe
  • Finding and cracking "Kerberoastable" and "ASREPRoastable" Active Directory accounts
  • Dumping, passing and cracking hashes from domain controllers

The Light Pentest eBook is available now for $7.77, and by purchasing it you are entitled to all future editions/revisions going forward.

Avsnitt(720)

7MS #511: How to Succeed in Business Without Really Crying - Part 10

7MS #511: How to Succeed in Business Without Really Crying - Part 10

Today we're continuing our series focused on [owning a security consultancy], talking specifically about: How not to give up on warm sales leads, even if they haven't panned out for 5+ years! Some...

11 Mars 202236min

7MS #510: First Impressions of Tailscale

7MS #510: First Impressions of Tailscale

Today we share some first impressions of Tailscale, a service that advertises itself as "Zero config VPN. Installs on any device in minutes, manages firewall rules for you, and works from anywhere." I...

2 Mars 202242min

7MS #509: Creating Kick-Butt Credential-Capturing Phishing Campaigns - Part 4

7MS #509: Creating Kick-Butt Credential-Capturing Phishing Campaigns - Part 4

Today we revisit our phishing series with a few important updates that help us run our campaigns more smoothly, such as creating a simple but effective fake O365 portal, and being aware that some emai...

23 Feb 202234min

7MS #508: Tales of Pentest Pwnage - Part 33

7MS #508: Tales of Pentest Pwnage - Part 33

Hey friends! We have another fun test of pentest pwnage to share with you today, which is kind of tossed in a blender with some first impressions of ShellcodePack. We were on a bunch of pentests recen...

18 Feb 202246min

7MS #507: Interview with Matthew Warner of Blumira

7MS #507: Interview with Matthew Warner of Blumira

Today's featured interview is with Matthew Warner, CTO and co-founder of Blumira. We had a great chat about why out-of-the-box Windows logging isn't super awesome, "free" ways to get logging turned up...

9 Feb 20221h 10min

7MS #506: Tales of Pentest Pwnage - Part 32

7MS #506: Tales of Pentest Pwnage - Part 32

Today's my favorite tale of pentest pwnage (again)! This time we're talking about sAMAccountName spoofing specifically. We also talk about my always-under-construction list of things I try early in a ...

3 Feb 202252min

7MS #505: Pwning Wifi PSKs and PMKIDs with Bettercap

7MS #505: Pwning Wifi PSKs and PMKIDs with Bettercap

Hey friends, today I talk about the old school way I used to pwn wifi networks, then a more modern way, and then my new favorite way (spoiler alert: I use Bettercap).

28 Jan 202248min

7MS #504: Monitoring All Your Cloud Thingies with UptimeRobot

7MS #504: Monitoring All Your Cloud Thingies with UptimeRobot

Hey friends, today we're talking about how to monitor all your cloud thingies (Web servers, mail servers, etc.) with UptimeRobot. And I'm sharing some fun tips to monitor your internal thingies as wel...

20 Jan 202240min

Populärt inom Politik & nyheter

aftonbladet-krim
p3-krim
rss-krimstad
spar
aftonbladet-daily
svenska-fall
politiken
flashback-forever
rss-expressen-dok
rss-sanning-konsekvens
rss-krimreportrarna
kungligt
ett-rent-noje
rss-vad-fan-hande
motiv
rss-frandfors-horna
blenda-2
rss-flodet
krimmagasinet
svd-ledarredaktionen